BSSI2 LLC • www.bssi2.com • sbernstein@bssi2.com • 847-551-4626| Support•support@bssi2.com•312-752-4675

Business Email Compromise: It Could Happen to You

The Lighter Side�.

The Coke Salesman in Israel

A disappointed salesman of Coca-

Cola returned from his assignment

to Israel.

A friend asked, “Why weren’t you

successful with the Israelis?”

The salesman explained, “When I

got posted, I was very confident that

I would make a good sales pitch. But

I had a problem. I didn’t know how

to speak Hebrew. So I planned to

convey the message through three

posters.

First poster:

A man lying in the hot desert sand

totally exhausted and fain)ng.

Second poster:

The man is drinking Coca-Cola.

Third poster:

Our man is now totally refreshed.

And then these posters were pasted

all over the place.

“Terrific idea! That should have

worked!” said the friend.

“The hell it should have!” said the

salesman.

“But no one told me they read from

right to le,!”

Innovations

People may say CEO Fraud (also called

Business Email Compromise, BEC) won’t

happen to me, we’re too small of a

company. Yet just this month a client of

ours—with 25 employees—received a

CEO Fraud attempt.

The FBI released a brand new alert on

April 4th, 2016 which warns of a major

increase in BEC, amounting to a

whopping $2.3 billion in losses. This is

very relevant information if you are

discussing IT security budget.

Here is what the FBI said:

"The schemers go to great lengths to spoof

company email or use social engineering

to assume the identity of the CEO, a

company attorney, or trusted vendor.

They research employees who manage

money and use language specific to the

company they are targeting, then they

request a wire fraud transfer using dollar

amounts that lend legitimacy.

"There are various versions of the scams.

Victims range from large corporations to

tech companies to small businesses to non

-profit organizations. Many times, the

fraud targets businesses that work with

foreign suppliers or regularly perform

wire transfer payments.

• Law enforcement globally has received

complaints from victims in every U.S.

state and in at least 79 countries

• From October 2013 through February

2016, law enforcement received reports

from 17,642 victims

• This amounted to more than $2.3 billion

in losses

• Since January 2015, the FBI has seen a

270 percent increase in identified

victims and exposed loss

• In Arizona the average loss per scam is

between $25,000 and $75,000

If your company has been victimized by

a BEC scam:

• Contact your financial institution

immediately

• Request that they contact the financial

institution where the fraudulent transfer

was sent

• File a complaint—regardless of dollar

loss—with the IC3 Link: https://

www.ic3.gov/complaint/default.aspx

FBI Tips for Businesses:

• Be wary of email-only wire transfer

requests and requests involving

urgency

• Pick up the phone and verify legitimate

business partners

• Be cautious of mimicked email

addresses

• Practice multi-level authentication"

Check out the BSSi2 March 4th blog post,

Prevent CEO Fraud by watching for these

email Red Flags, for more tips on

preventing your company from becoming

a victim.

http://www.bssi2.com/2016/03/social-

engineering-red-flags/

Review Twice, Implement Once. Doing IT Right the First Time. • April 2016 Sco- Bernstein, CPA

President

Nick Espinosa

CIO and Chief Security Fana)c

BSSI2 LLC • www.bssi2.com • sbernstein@bssi2.com • 847-551-4626| Support•support@bssi2.com•312-752-4675

Innovations 2

Business owners will spend all day speaking about their products’ or services’ features and benefits, their company’s history, their mission and vision …

CEOs and CFOs of public companies will bend investors’ ears on what makes their companies so great and why people should buy their stock today …

And you—where’s your passion? What will you talk about ad nauseam—long after people have stopped rolling their eyes and have started shutting them? (I’m guilty, too. For me, it’s how good communication can solve just about any kind of problem with customers, employees, investors and the media.)

Although people love your passion, they hate wading through the pile of prose between them and what they really want to know. So as much as we love our subject, we need to give a little love to the people we’re trying to reach. Here are the two tricks I use to keep my intoxication with a topic from pushing people away rather than drawing them to me.

Tip #1: What Am I Trying to Do?

It’s Communications 101: what’s the purpose of all this? Am I trying to educate people on a topic? Am I trying to get their agreement? Am I trying to get them to take action (and what would that be, by the way)? Am I trying to get information from them?

You’d be surprised by the number of people who don’t consider why they’re speaking or writing before they start. Don’t be one of them. If you know what you want, you’ve exponentially increased the chances you’ll actually get it.

Tip #2: Who Am I Trying to Reach?

Let’s face it: your family and friends will cut you a lot more slack on your latest love than anyone else. But not your boss, when you’re trying to convince her that you have a great idea for a new project. But not your client, when you’re trying to convince him

to spend more money with you when he’s already feeling budget constrained. But not the reporter on the phone, when you’re trying to convince him that this is a great story his readers can hardly wait to know more about.

So when you’re spending that extra few seconds deciding what you want to accomplish before the communication, spend a few more thinking about the people on the other end of it. Here’s your checklist.

• Why would they want to hear from you?

• When would they want to hear from you?

• How would they want to hear from you?

• What’s in it for them?

• What objections could they raise to your idea—and how could you address these up front so they don’t get the chance to use them to end the communication?

And the all-important—and often overlooked—What do I do if they actually agree with me and want to move forward? That’s another downside of passion: sometimes we’re so busy waxing eloquent about our subject that we don’t know when to stop! Then we can run the risk of talking people out of something they initially agreed to.

Before that next email, news release, proposal, phone conversation, tweet—mix compassion for your target audience with the passion for your subject. You’ll create your own Love Potion #9.

Lynne Franklin is a corporate and marke)ng

communica)ons consultant and speaker.

What she does best is create meaningful

communica)ons to help businesspeople

solve their problems and get what they

want. To learn about how she can help you,

contact Lynne at 847-729-5716 or

lynne@yourwordsmith.com

The Misplaced Passion Theory When people are passionate about a subject, they want to tell everyone everything.

But people don’t want to know everything—they just want to hear what’s important to them

BSSI2 LLC • www.bssi2.com • sbernstein@bssi2.com • 847-551-4626| Support•support@bssi2.com•312-752-4675

Which Flavor Of The Cloud Is Right For You Secure data backup, greater reliability, better resource and growth management options, and improved collaboration are just a few of the reasons to take full advantage of cloud computing today.

Yet understanding the choices you have can help you avoid some VERY costly mistakes you could wind up seriously regretting later. To help you move forward with confidence, here are some important points to consider.

Three “Flavors” Of The Cloud Not all cloud models are the same. A cloud environment that works for a dental practice with a half dozen locations may not be entirely suitable for a new law firm with just a single office.

In determining what the best cloud model is for your organization, it’s important to know how cloud services are structured.

Basically, there are three types of cloud: public, private and hybrid.

Public Cloud Services Offer Flexibility And Lower Cost A public cloud comprises a collection of data storage and software services that can be accessed on an as-needed monthly basis, somewhat like an electric utility or fitness club. It houses data facilities outside the corporate firewall that you access through an Internet browser without having to make any initial or ongoing capital investment.

Well-known examples of public cloud services include Google Drive, Microsoft Office Online, Apple iCloud and Amazon Cloud Drive. They provide data storage and, in many cases, web apps.

Public clouds are best used where a high level of privacy is not required. They can provide access to a growing pool of newer technologies that would not be affordable if developed individually.

Private Clouds Support Highly Specialized Apps A private cloud resides within an organization’s firewall, and is typically owned, managed and supported by that business. IT resources are available to members of the organization from their own data center.

Private clouds can support highly specialized and/or privacy-restricted applications, like medical-records software for a health-care organization concerned about HIPPA requirements, for example.

April 2016 3

And, while it can be more expensive to set up initially, a private cloud may deliver a higher ROI in the long run since you’re not paying for ongoing shared services.

Hybrid Clouds: Balancing Complexity With Flexibility Merging the flexibility of public cloud services with the control of a private cloud, a hybrid cloud can provide the ideal infrastructure for some organizations.

A hybrid cloud enables you to put some of your apps and data – archives and e-mail, for instance – in a public cloud, and the remainder in your private cloud. This provides the cost savings and benefits of the public cloud while retaining the customization and security advantages of a private cloud.

While it can be more complex to deploy and manage than a pure public or private cloud, a hybrid cloud may

deliver the best blend of control, flexibility and cost-effectiveness for some organizations.

So Which “Flavor” Is Right For You? There is no perfect solution – each type of cloud has its own pros and cons. That being said, here are a few key factors to consider when determining the best approach for your particular business:

Public cloud solutions are best suited to the flexibility and budget requirements of smaller businesses that want access to the kind of IT resources that bigger organizations can afford, without the cost of development and ongoing support and management.

A private cloud, managed and supported by an in-house IT team, may be ideal for your organization if control and privacy are of paramount concern.

A hybrid cloud could be the ideal solution for any enterprise that wants to manage sensitive data in-house while availing itself of third-party software and data storage for uses where the data involved isn’t as sensitive.

How To Get The Best Professional Help While hiring a cloud-computing expert can prove extremely beneficial in the long run, it’s critical to work with a professional who has depth of experience in all types of cloud environments.

We’ve helped dozens of companies set up and run cost-effective, powerful and secure cloud networks. For a Free Cloud Readiness Assessment, contact us at (847) 551-4626 or sbernstein@bssi2.com today.

BSSI2 LLC • www.bssi2.com • sbernstein@bssi2.com • 847-551-4626| Support•support@bssi2.com•312-752-4675

“We make all of your computer problems go away

without the cost of a full-time I.T. staff”

For service, please contact the Service Manager at Phone 312-752-4675 • Email support@bssi2.com

April 2016

35 Aztec Court South Barrington, IL 60010

(847) 551-4626

www.bssi2.com

Review Twice, Implement Once. Doing IT Right the First Time

BSSi2 Support | (312) 752-4675 | support@bssi2.com

Feel like your computer is out of gas? Having network

issues that are delaying your daily opera)ons? Give our IT

professionals a call today for your FREE Network

Assessment. We will inventory your current technology,

check network security, review your back-up solu)on and

deliver a report including outstanding issues and possible

solu)ons. It’s amazing how a simple review of your current

opera)ons can reveal cost and )me saving opportuni)es.

Claim your FREE Network Assessment today!

Shiny New Gadget of the Month

New Printer Fits In Your Pocket

So, what’s about the size of a deck of cards and prints instant photos from your smartphone – with no ink needed?

Yes, there is such a thing, and if you guessed the new Polaroid Zip, you’d be right.

Selling for $129.99, it prints full-color 2x3-inch prints with an optional peel-off sticky backing. Each print costs about 25 cents and they look okay, all things considered – just don’t expect ink-jet print quality.

How does it not need ink? It uses Polaroid’s Zink zero-ink paper, embedded with cyan, yellow and magenta crystals. They turn into the appropriate colors when activated by a heat process. And since there’s no ink, there’s no stickiness, smearing or waiting for photos to dry.

Connect to your smartphone via Bluetooth, then just shoot and print!

4